BleepingComputer.com

"NIST to stop rating non-priority flaws due to volume increase."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.   Accessed on 19 April 2026, 1454 UTC.

Content and Source:  "BleepingComputer.com."

URL--https://www.bleepingcomputer.com/

Please check URL or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Latest Articles

• 
   
  Security

  NIST to stop rating non-priority flaws due to volume increase

  The National Institute of Standards and Technology will stop assigning severity scores to lower-priority vulnerabilities due to the growing workload from rising submission volumes.

  • Bill Toulas
   
  • April 19, 2026
   
  • 10:17 AM
   
  •  0
• 
   
  Deals

  Edit, convert, and sign PDFs fast with this $40 lifetime tool

  Working with PDFs shouldn't include piecing together a bunch of different tools just to get one job done. That's where PDF Agile Premium makes things easier, and you can get lifetime access for a one-time $39.99 (MSRP $119).

  • BleepingComputer Deals
   
  • April 19, 2026
   
  • 08:06 AM
   
  •  0
• 
   

  State of Browser Attacks: Learn from John Hammond, Troy Hunt & Matt Johansen 

  Join Push Security's free three-part webinar series where top security researchers break down the browser-based attacks driving today's biggest breaches - from AiTM phishing and ConsentFix to compromised credentials and session hijacking.

  • Push Security Sponsorship
• 
   
  Security

  Critical flaw in Protobuf library enables JavaScript code execution

  Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used JavaScript implementation of Google's Protocol Buffers.

  • Bill Toulas
   
  • April 18, 2026
   
  • 11:09 AM
   
  •  0
• 
   
  Microsoft

  Microsoft Teams right-click paste broken by Edge update bug

  Microsoft is warning that a recent Microsoft Edge browser update introduced a bug that breaks right-click paste in chats in the Microsoft Teams desktop client.

  • Lawrence Abrams
   
  • April 18, 2026
   
  • 10:11 AM
   
  •  2
• 
   
  Security

  NAKIVO v11.2: Ransomware Defense, Faster Replication, vSphere 9, and Proxmox VE 9.0 Support

  NAKIVO Inc. announced the general availability of NAKIVO Backup & Replication v11.2, focused on fast, reliable, and proactive data protection.

  • NAKIVO
   
  • April 18, 2026
   
  • 09:45 AM
   
  •  0
• 
   
  Deals

  Save 72% in this refurbished Microsoft Surface Pro 6 deal

  For anyone who needs a lightweight, touchscreen Windows machine and doesn't want to pay full price for new hardware, this refurbished Microsoft Surface Pro 6 is available now for $229.99 (reg. $849.99).

  • BleepingComputer Deals
   
  • April 18, 2026
   
  • 08:12 AM
   
  •  0
• 
   
  Security

  Payouts King ransomware uses QEMU VMs to bypass endpoint security

  The Payouts King ransomware is using the QEMU emulator as a reverse SSH backdoor to run hidden virtual machines on compromised systems and bypass endpoint security.

  • Bill Toulas
   
  • April 17, 2026
   
  • 03:10 PM
   
  •  0
• 
   
  Security, CryptoCurrency

  Grinex exchange blames "Western intelligence" for $13.7M crypto hack

  Kyrgyzstan-based cryptocurrency exchange Grinex has suspended its operations after suffering a $13.7 million hack attributed to Western intelligence agencies.

  • Bill Toulas
   
  • April 17, 2026
   
  • 11:08 AM
   
  •  0
• 
   
  Security

  Inside an Underground Guide: How Threat Actors Vet Stolen Credit Card Shops

  In cybercrime markets, trust isn't assumed, it's verified. Flare reveals how underground guides teach actors to evaluate carding shops based on data quality, reputation, and survivability.

  • Flare
   
  • April 17, 2026
   
  • 10:01 AM
   
  •  0
• 
   
  Security

  Webinar: From phishing to fallout — Why MSPs must rethink both security and recovery

  Cyberattacks are evolving faster than many MSP and corporate defenses can keep up, with phishing driving much of today's cybercrime. Join our upcoming webinar to learn how to combine security and recovery strategies to reduce risk and maintain business continuity.

  • BleepingComputer
   
  • April 17, 2026
   
  • 08:20 AM
   
  •  0
• 
   
  Deals

  AdGuard’s VPN and ad blocker bundle is now only $39.97 (was $439.39)

  Right now, AdGuard has an offer where you can get both a VPN and an ad blocker on sale for only $39.97 (reg. $439.39).

  • BleepingComputer Deals
   
  • April 17, 2026
   
  • 07:09 AM
   
  •  0
• 
   
  Security

  CISA flags Apache ActiveMQ flaw as actively exploited in attacks

  CISA warned that attackers are now exploiting a high-severity Apache ActiveMQ vulnerability, which was patched earlier this month after going undetected for 13 years.

  • Sergiu Gatlan
   
  • April 17, 2026
   
  • 05:30 AM
   
  •  0
• 
   
  Microsoft

  Microsoft: Some Windows servers enter reboot loops after April patches

  Microsoft warns that some Windows domain controllers are entering restart loops after installing the April 2026 security updates.

  • Sergiu Gatlan
   
  • April 17, 2026
   
  • 03:59 AM
   
  •  1
• 
   
  Security

  Man gets 30 months for selling thousands of hacked DraftKings accounts

  23-year-old Kamerin Stokes of Memphis, Tennessee, was sentenced to 30 months in prison for selling access to tens of thousands of hacked DraftKings accounts.

  • Sergiu Gatlan
   
  • April 17, 2026
   
  • 03:10 AM
   
  •  1
• 
   
  Security, Microsoft

  Recently leaked Windows zero-days now exploited in attacks

  Threat actors are exploiting three recently disclosed Windows security vulnerabilities in attacks aimed at gaining SYSTEM or elevated administrator permissions.

  • Sergiu Gatlan
   
  • April 17, 2026
   
  • 02:14 AM
   
  •  1
• 
   
  Security, Legal

  Operation PowerOFF identifies 75k DDoS users, takes down 53 domains

  The latest wave of "Operation PowerOFF," on April 13, 2026, targeted the distributed denial-of-service (DDoS) ecosystem and its users across 21 countries.

  • Bill Toulas
   
  • April 16, 2026
   
  • 06:26 PM
   
  •  0
• 
   
  Security

  ZionSiphon malware designed to sabotage water treatment systems

  A new malware called ZionSiphon, specifically designed for operational technology, is targeting water treatment and desalination environments to sabotage their operations.

  • Bill Toulas
   
  • April 16, 2026
   
  • 06:04 PM
   
  •  0
• 
   
  Microsoft, Security

  New Microsoft Defender “RedSun” zero-day PoC grants SYSTEM privileges

  A researcher known as "Chaotic Eclipse" has published a proof-of-concept exploit for a second Microsoft Defender zero-day, dubbed "RedSun," in the past two weeks, protesting how the company works with cybersecurity researchers.

  • Lawrence Abrams
   
  • April 16, 2026
   
  • 04:19 PM
   
  •  3
• 
   
  Deals

  Add Azure Architect & Administrator skills to your resume for $40

  Get lifetime access to the 2026 Microsoft Azure Architect & Administrator Exam Certification Prep Bundle for only $39.99 (MSRP $117).

  • BleepingComputer Deals
   
  • April 16, 2026
   
  • 02:11 PM
   
  •  0
• 
   
  Security

  Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

  Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware hosted on Hugging Face Spaces.

  • Bill Toulas
   
  • April 16, 2026
   
  • 12:58 PM
   
  •  0

• 1
 
• 2
 
• 3
 
• 4
 
• 5
 

View More